Skip to content
This repository has been archived by the owner on Jan 19, 2022. It is now read-only.

mozilla/minion-ssl-plugin

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

9 Commits
minion
minion
 
 
README.md
README.md
 
 
parse.py
parse.py
 
 
setup.py
setup.py
 
 

Repository files navigation

Minion SSL/TLS Plugin

This is a plugin for Minion that executes the sslscan tool to find issues with the SSL/TLS connfiguration of a host.

It currently only does the following checks:

  • Check if the obsolete SSLv2 protocol is enabled on the server
  • Check if the certificate date period is valid
  • Check for RSA key length

More checks can be written based on the XML output of sslscan.

Important Note

The sslscan tool is compiled against OpenSSL. Some distributions, like Ubuntu, disable SSLv2 in OpenSSL. This is generally a good idea but it also means that sslscan cannot detect SSLv2 anymore.

Therefore the plugin looks for a version of sslscan named minion-sslscan. This is a build that is statically linked against OpenSSL 1.0.1e with SSLv2 enabled. This is not ideal but a good interim solution.

About

INACTIVE - http://mzl.la/ghe-archive - Minion SSL/TLS Plugin

Topics

inactive unmaintained

Resources

Readme
Activity
Custom properties

Stars

7 stars

Watchers

11 watching

Forks

2 forks
Report repository

Releases

No releases published

Packages

No packages published

Contributors 2

  •  
  •  

Languages